CVE-2022-38692 | THREATINT

Description

In BootROM, there is a missing size check for RSA keys in Certificate Type 0 validation. This could lead to memory buffer overflow without requiring additional execution privileges.

PUBLISHED Reserved 2022-08-22 | Published 2025-09-01 | Updated 2025-09-02 | Assigner Unisoc

Product status

Default status

unaffected

affected

References

www.nccgroup.com/...-in-your-soc-unisoc-rom-vulnerabilities/

cve.org (CVE-2022-38692)

nvd.nist.gov (CVE-2022-38692)

Download JSON